Merge pull request #4717 from papuSpartan/security

Add --server-name to the list of arguments considered insecure

Merge pull request #4717 from papuSpartan/security
Add --server-name to the list of arguments considered insecure
ccd73fc1 · AUTOMATIC1111 · GitHub · 32718834 · 3405acc6 · ccd73fc1
隐藏空白更改
内联并排

Showing with 5 addition and 2 deletion

modules/shared.py modules/shared.py +1 -1

webui.py webui.py +4 -1

未找到文件。
--- a/modules/shared.py
+++ b/modules/shared.py
@@ -107,7 +107,7 @@ restricted_opts = {
    "outdir_save",
 }

-cmd_opts.disable_extension_access = (cmd_opts.share or cmd_opts.listen) and not cmd_opts.enable_insecure_extension_access
+cmd_opts.disable_extension_access = (cmd_opts.share or cmd_opts.listen or cmd_opts.server_name) and not cmd_opts.enable_insecure_extension_access

 devices.device, devices.device_interrogate, devices.device_gfpgan, devices.device_swinir, devices.device_esrgan, devices.device_scunet, devices.device_codeformer = \
 (devices.cpu if any(y in cmd_opts.use_cpu for y in [x, 'all']) else devices.get_optimal_device() for x in ['sd', 'interrogate', 'gfpgan', 'swinir', 'esrgan', 'scunet', 'codeformer'])

--- a/webui.py
+++ b/webui.py
@@ -33,7 +33,10 @@ from modules.shared import cmd_opts
 import modules.hypernetworks.hypernetwork

 queue_lock = threading.Lock()
-server_name = "0.0.0.0" if cmd_opts.listen else cmd_opts.server_name
+if cmd_opts.server_name:
+    server_name = cmd_opts.server_name
+else:
+    server_name = "0.0.0.0" if cmd_opts.listen else None

 def wrap_queued_call(func):
    def f(*args, **kwargs):